AfterDawn: Tech news

Neiman Marcus hackers stole information for months, tripped security alerts nearly 60,000 times

Written by Andre Yoskowitz @ 23 Feb 2014 7:17

Neiman Marcus hackers stole information for months, tripped security alerts nearly 60,000 times

According to an internal company analysis of the breach, the hackers who attacked Neiman Marcus and stole hundreds of thousands of credit card numbers and personal information were working on the store for three and a half months, setting off security system alerts over 60,0000 times.
The report concluded the card data was stolen from July through October, and it was not done by the same groups or groups that hit Target, stealing information on 70 million consumers.

Ginger Reeder, speaking for Neiman Marcus, says the hackers named their malware almost identically to the company's payment software, thus allowing over 60,000 security alerts to pass unnoticed with all the huge amounts of data sorted by the company's security.

"These 60,000 entries, which occurred over a three-and-a-half month period, would have been on average around 1 percent or less of the daily entries on these endpoint protection logs, which have tens of thousands of entries every day," Reeder added (via BW).



After the investigation, the company also found that original estimates of 1.1 million cards stolen was high, with the real figure below 350,000. 9200 of the stolen cards were used fraudulently since the attacks. Neiman Marcus concluded that it was in compliance with standards to protect transaction data, and data-security requirements were increased again this year.

All of the alerts were flagged as "suspicious behavior," but were ignored. The system's internal ability to block suspicious activity was also shut off at the time because it would have hindered the system's ability to patch other security holes and regular maintenance.

Read more about the interesting attack here.

Previous Next  
Comments have been disabled for this article.

Latest news

Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets (06 Jun 2023 9:19)
Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
Neato, the robot vacuum company, ends its operations Neato, the robot vacuum company, ends its operations (02 May 2023 3:38)
Neato Robotics has ceased its operations. American robot vacuum pioneer founded in 2005 has finally called it quits and company will cease its operations and sales. Only a skeleton crew will remain who will keep the servers running until 2028.
5 user comments
How to Send Messages to Yourself on WhatsApp How to Send Messages to Yourself on WhatsApp (20 Mar 2023 1:25)
The world's most popular messaging platform, Meta-owned WhatsApp has enabled sending messages to yourself. While at first, this might seem like an odd feature, it can be very useful in a lot of situations. ....
18 user comments
How to Enable Bluetooth on Stadia Controller How to Enable Bluetooth on Stadia Controller (11 Feb 2023 1:04)
Google shut down its streaming game service Stadia late last month and this means that some people have Stadia controllers lying around that seem to be of no use. That is fortunately not the ....
2 user comments
Guide: How to Kick Unwanted Guests from Your Netflix Account Guide: How to Kick Unwanted Guests from Your Netflix Account (26 Jan 2023 2:14)
Sharing a Netflix account with a person in a different location is possible and indeed very common, although the company doesn't necessarily enjoy this behavior from their customers. However, ....

News archive